CVSS: 5.3EPSS: 0%CPEs: 74EXPL: 0CVE-2020-3360 – Cisco IP Phones Series 7800 and Series 8800 Call Log Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-3360
18 Jun 2020 — A vulnerability in the Web Access feature of Cisco IP Phones Series 7800 and Series 8800 could allow an unauthenticated, remote attacker to view sensitive information on an affected device. The vulnerability is due to improper access controls on the web-based management interface of an affected device. An attacker could exploit this vulnerability by sending malicious requests to the device, which could allow the attacker to bypass access restrictions. A successful attack could allow the attacker to view sen... • https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-phone-logs-2O7f7ExM • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-863: Incorrect Authorization •
CVSS: 7.5EPSS: 0%CPEs: 36EXPL: 0CVE-2018-0332
https://notcve.org/view.php?id=CVE-2018-0332
07 Jun 2018 — A vulnerability in the Session Initiation Protocol (SIP) ingress packet processing of Cisco Unified IP Phone software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a lack of flow-control mechanisms in the software. An attacker could exploit this vulnerability by sending high volumes of SIP INVITE traffic to the targeted device. Successful exploitation could allow the attacker to cause a disruption of services on the targeted IP phon... • http://www.securityfocus.com/bid/104445 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 147EXPL: 0CVE-2011-1603
https://notcve.org/view.php?id=CVE-2011-1603
02 Jun 2011 — Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 allow local users to gain privileges via unspecified vectors, aka Bug ID CSCtn65815. Los dispositivos Cisco Unified IP Phones 7900 (también conocidos como teléfonos TNP) con el software anterior a la v9.2.1 permiten a usuarios locales conseguir privilegios a través de vectores no especificados. Error también conocido Bug ID CSCtn65815. • http://osvdb.org/72718 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 147EXPL: 0CVE-2011-1637
https://notcve.org/view.php?id=CVE-2011-1637
02 Jun 2011 — Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.2.1 do not properly verify signatures for software images, which allows local users to gain privileges via a crafted image, aka Bug ID CSCtn65962. Los dispositivos Cisco Unified IP Phones 7900 (también conocido como teléfonos TNP) con el software anterior a la v9.2.1 no verifican adecuadamente las firmas de imágenes de software, lo que permite a usuarios locales conseguir privilegios a través de una imagen hecha a mano. Error tambi... • http://osvdb.org/72719 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 145EXPL: 0CVE-2011-1602
https://notcve.org/view.php?id=CVE-2011-1602
02 Jun 2011 — The su utility on Cisco Unified IP Phones 7900 devices (aka TNP phones) with software before 9.0.3 allows local users to gain privileges via unspecified vectors, aka Bug ID CSCtf07426. La utilidad 'su' en los dispositivos Cisco Unified IP Phones 7900 (también conocidos como teléfonos TNP) con el software anterior a la v9.0.3 permite a usuarios locales conseguir privilegios a través de vectores no especificados. Error también conocido Bug ID CSCtf07426. • http://osvdb.org/72717 • CWE-264: Permissions, Privileges, and Access Controls •